d1c24c66d5b01de5d9f3a771458afcd6a4747ac13587dd438e1a8cd7a6bbbe5b | Triage

Sharing

General

Target

6a63de7d569256a82739cc6b25bf5d07_JaffaCakes118
Size

17.4MB
Sample

240523-kqyypabc25
MD5

6a63de7d569256a82739cc6b25bf5d07
SHA1

6ccd7b79ccb7d86e5efdd9384e9af56a2e21eb26
SHA256

d1c24c66d5b01de5d9f3a771458afcd6a4747ac13587dd438e1a8cd7a6bbbe5b
SHA512

835d18e16ac893d6f6a1ab4ac06aa038beac3c2efe60d4249acdc2c3d2e75dba287afb5bdaba178925d4ee7bf8b6ae1f75394b198962111c13b0107fd7ce0144
SSDEEP

393216:unEonUGIzIb1qHDEe5RYtFz/ra1NL66MQQA7FDK:3onUGIzWzV/raG6Ms4

Score

8^/10

android collection discovery evasion impact

Malware Config

Targets

- Target
  
  6a63de7d569256a82739cc6b25bf5d07_JaffaCakes118
- Size
  
  17.4MB
- MD5
  
  6a63de7d569256a82739cc6b25bf5d07
- SHA1
  
  6ccd7b79ccb7d86e5efdd9384e9af56a2e21eb26
- SHA256
  
  d1c24c66d5b01de5d9f3a771458afcd6a4747ac13587dd438e1a8cd7a6bbbe5b
- SHA512
  
  835d18e16ac893d6f6a1ab4ac06aa038beac3c2efe60d4249acdc2c3d2e75dba287afb5bdaba178925d4ee7bf8b6ae1f75394b198962111c13b0107fd7ce0144
- SSDEEP
  
  393216:unEonUGIzIb1qHDEe5RYtFz/ra1NL66MQQA7FDK:3onUGIzWzV/raG6Ms4
Score

7^/10

evasion impact
- Loads dropped Dex/Jar
  Runs executable file dropped to the device during analysis.
  evasion
behavioral1
- Target
  
  alipayplugin.apk
- Size
  
  353KB
- MD5
  
  4d8c1c40475a91b04cd97d6dee1dadb0
- SHA1
  
  2c9bd64e889a62d9fc7500e0fccadd2189f27288
- SHA256
  
  7950404b6976f44329d1cb021b73b182e2e9e84e2f90e86e54dabe3902784239
- SHA512
  
  025c43eb79c5138cc4c44c67328fdc98c51163c97511a9b421580c54d023b1c05c3588a8ea0d6c220f40d9f7d69e86240c8abf6d3fccfcd5782087252a0b14c9
- SSDEEP
  
  6144:OIhfOSywkDqx9kvdacnCVRJqPq3JurJ2f3Rp5tPVKt9m8rpvCpCBJpN:OIpywkex9kla7VvLQQhtduNrpvCAvv
Score

8^/10

collection discovery evasion
- Requests cell location
  Uses Android APIs to to get current cell location.
  collection discovery evasion
- Queries information about the current Wi-Fi connection
  Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.
  discovery
- Checks if the internet connection is available
  discovery
behavioral2
- Target
  
  autonavi_Resource1_1_0.png
- Size
  
  326KB
- MD5
  
  4e4ad3d35df32c597ebf76e236b4dc73
- SHA1
  
  fdcecaa29ee7d0998b29727722fdb85ea3b6fc20
- SHA256
  
  70936a32e32c5d983767d6a77963867e0cf9e6ed36e8a355931ada370976761c
- SHA512
  
  77797e813d155c8fe6601acab923fb7c022fff682065328b57355de7023979ab14118d33d3239de39ba9e4ad6d08240d399ad80dc03df3c0fc8c665866607c5b
- SSDEEP
  
  6144:WUoyM5Qc7QR51Xc25YAL6oCJYmq0IsKHWsclKfiiEg/9Mv0kw:WUoykJQ/8AL6oMIsK2kiiEg/9K0kw
Score

1^/10
behavioral3 behavioral4 behavioral5
- Target
  
  gdtadv2.jar
- Size
  
  73KB
- MD5
  
  07843c6d5969b685d39a7dadf635237e
- SHA1
  
  3070199d4c497ad96e7f0d2beaa5ab9d8772234c
- SHA256
  
  e344405b31ad9a52e9bcea6bc6ad7d0858ba4008102283adb1c72d86443ac796
- SHA512
  
  b4e3e245641ce61757d5cfb74f6b39ec7ba4a2aeb0818a589af852e99a2669f849d334b1c57e4edb1c50ba5f3ecdf928650007d206c34f83e9eb8682d7455c8f
- SSDEEP
  
  1536:YrNP+qzuTVQX1K9MR4/u6g591bFcEQIkkRM5E7Pe6NEkEC:8xzvK9M8g591bFcEbDume6NEK
Score

1^/10
behavioral6 behavioral7 behavioral8
- Target
  
  plugin-deploy.jar
- Size
  
  202KB
- MD5
  
  610ae20fa40cb991ef4670582bc3996a
- SHA1
  
  bad8dbc9b7226fbd4f1b97dabe777c36605ccc9b
- SHA256
  
  010690c6a9fe3d6e21c33940453cb2a5c41e26ac24ea42e3732111613701eede
- SHA512
  
  8584fa3850e97276d6afef61dff9401531cd7830a3a7660fcc3b75c21c55196a59efad46ad763f1695f59c99874e29aa285ba9d9f43a5989d004a0e115d76b1b
- SSDEEP
  
  3072:KZka1USzNNXt2YZvCb/VSD2h/8b1pHOfRmmFSB/0wTMVM6OZBryCFqCNh0Tbu/7f:KFz7XXWVSD2qb1pMRmIY/IkR/qCNOTC7
Score

1^/10
behavioral10 behavioral11 behavioral9

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

collectiondiscoveryevasion

behavioral3

behavioral4

behavioral5

behavioral6

behavioral7

behavioral8

behavioral9

behavioral10

behavioral11